Trojan disguises itself as legitimate software and damages, disrupts, steals, or inflicts some harmful action on a network or data in a system. It mainly targets banking, payment, and social media apps and every time a consumer opens such applications, the Trojan captures the credentials; shows an error and uses the credentials or passes the details to its creators. These malicious codes repeatedly appear on a user’s mobile screen asking for credit card details or other credentials and do not disappear until some input is typed in. The Trojan then overlays the display of the affected device with a fake screen, which appears identical to the original screen of the application.
Quick Heal Technologies, an IT security solutions provider, recently detected two Trojans that purports to be banking and social media applications on mobile devices. The Trojans identified by Quick Heal were Android.Marcher.C and Android.Asacub.T. These Trojans trick the mobile users into sharing their sensitive information like login credentials for banking applications and social media accounts and appear either appear as malicious links or emergency updates in third-party app stores.
The best way to protect one’s sensitive banking or credential information from this malware is by not sharing crucial data randomly online and by avoiding unauthorized applications. Many people tend to download applications from third-party stores because they are usually offered free. But such free apps might come with malware that ends up trying to steal all of the user’s personal data. Hence, it is always safe to use applications downloaded or purchased from authorized stores like Google Play Store or Apple App Store. Users should also check app permissions on their mobile devices before installing any application.
Never click on fraudulent links that make preposterous offers like cash back guarantees for purchases and fake mobile wallets, which are mostly sent via SMS, Email or WhatsApp. Always keep software updated and turn on the firewall to keep internet connectivity as secure as possible, since these are excellent at controlling malicious internet traffic, and often stop Trojans from infecting the devices and systems. Also, install antivirus software or Trojan removers which constantly scan every application and file on the device to make sure the user hasn’t downloaded a Trojan and ensure the device’s safety.
